The latest version of the OpenChain Project introduction slides are available. These slides can help bring anyone interested in our standard and supporting material up-to-speed. Full speaker notes included on the downloadable version:
https://www.slideshare.net/ShaneCoughlan3/great-open-source-compliance-for-everyone-version-5
Comment Time!
The latest draft of the next version of OpenChain Project Specification can be found here:
https://wiki.linuxfoundation.org/_media/openchain/openchainspec-2.0.draft.pdf
A marked up version can be found here:
https://wiki.linuxfoundation.org/_media/openchain/OpenChainSpec-2.0.draft.MarkUp.pdf
Recent updates can be found in yellow and blue highlights.
IF YOU HAVE FEEDBACK PLEASE SUBMIT IT NOW TO ENSURE TIMELY CONSIDERATION
Next Steps:
· Continue to discuss the Introduction rewrite and work through the remaining outstanding issues listed on the spec’s github issue list:
https://github.com/OpenChain-Project/Specification/issues
· Widely distribute the draft for public comments which will be initiated on February 19th and will last 30 days
· The draft freeze period will start on April 4th and will last 14 days
The specification Development Life Cycle is explained here:
https://wiki.linuxfoundation.org/openchain/openchain-specification-wiki-page?_developmentrelease_process
Additional Resources
Find more guides and documents in the OpenChain Reference Library
A global open source license compliance project, designed to simplify and make open source license compliance more consistent for participants of the software supply chain, has been backed by Microsoft.
The OpenChain Project, through its OpenChain Curriculum, looks to produce the “educational foundation” for open source processes and solutions creating a more predictable, understandable an efficient open source license compliance process for the software supply chain.
Read more in Supply Chain Digital.
This Wednesday, OpenChain announced that Microsoft has joined them as a platinum member and a board member to help drive open source compliance. Microsoft is a new addition to the list of many huge companies joining the OpenChain project including Uber, Google, and Facebook.
Read more in PacktHub.
Open source software provides businesses with a number of benefits including cost, flexibility and freedom. This freely distributed software can also be easily altered by any business that is familiar with its source code.
Read more in TechRadar.
The OpenChain Project, which is designed to build trust in open source by making open source license compliance simpler and more consistent, has announced that Microsoft has joined as a platinum member.
Read more in Supply Chain Management Review.
Microsoft has continued to buff its open-source halo by signing up to the OpenChain Project, which is aimed at simplifying the plethora of licences floating around the open-source community.
OpenChain (not to be confused with the open-source distributed ledger technology Openchain) is a Linux Foundation Project and lays claim to being the industry standard for managing open-source compliance across the software supply chain.
Read more in The Register.
A lot goes into making open source great – from licenses to code to community. A key part of doing open source right is being able to trust that the code you receive complies with its open source licenses. It’s a deceptively hard problem and one that Microsoft is working with the community to address.
The OpenChain Project plays an important role in increasing confidence around the open source code you receive. It does so by creating standards and training materials focused on how to run a quality open source compliance program, which in turn builds trust and removes friction in the ecosystem and supply chain.
A lot goes into making open source great – from licenses to code to community. A key part of doing open source right is being able to trust that the code you receive complies with its open source licenses. It’s a deceptively hard problem and one that Microsoft is working with the community to address.
The OpenChain Project plays an important role in increasing confidence around the open source code you receive. It does so by creating standards and training materials focused on how to run a quality open source compliance program, which in turn builds trust and removes friction in the ecosystem and supply chain.
OpenChain Project Adds Microsoft as Platinum Member
Global technology leader supports standardization in open source compliance to improve predictability and efficiency across supply chains
SAN FRANCISCO – February 6, 2019 — The OpenChain Project, which builds trust in open source by making open source license compliance simpler and more consistent, announced today that Microsoft has joined as a platinum member. This comes on the heels of several other large companies joining OpenChain last month including Uber, Google and Facebook. The only standard for open source compliance in the supply chain, OpenChain provides a specification as well as overarching processes, policies and training that companies need to be successful in managing open source license compliance so that it becomes more efficient, understandable and predictable for participants of the software supply chain.
Companies consume billions of lines of open source software through their supply chains as they build new products and services. One key challenge as code flows between companies is ensuring the relevant license requirements are met in a timely and effective manner. The OpenChain Project provides companies with a consistent way to address these challenges. It’s hard to overstate the importance of this work given open source is a critical input at every step in the supply chain, both in hardware and software.
By joining OpenChain, Microsoft will help create best practices and define standards for open source software compliance, so that its customers have even greater choice and opportunity to bridge Microsoft and other technologies together in heterogeneous environments. Conformance with the OpenChain Specification shows that an organization follows the key requirements of a quality open source compliance program, and builds trust between organizations in the supply chain. It makes procurement easier for purchasers and preferred status easier for suppliers.
“Trust is key to open source, and compliance with open source licenses is an important part of building that trust,” said David Rudin, Assistant General Counsel, Microsoft. “By joining the OpenChain Project, we look forward to working alongside the community to define compliance standards that help build confidence in the open source ecosystem and supply chain.”
“We’re thrilled that Microsoft has joined the project and welcome their expertise,” said Shane Coughlan, OpenChain General Manager. “Microsoft is a strong addition not only in terms of open source but also in standardization. Their membership provides great balance to our community of enterprise, cloud, automotive and silicon companies, allowing us to ensure the standard is suitable for any size company across any industry.”
As a platinum member, a representative from Microsoft will join the OpenChain Governing Board. Other platinum members of the OpenChain project include Adobe, ARM Holdings, Cisco, Comcast, Facebook, GitHub, Google, Harman International, Hitachi, Qualcomm, Siemens, Sony, Toshiba, Toyota, Uber and Western Digital.
Additional Resources
About the OpenChain Project
The OpenChain Project builds trust in open source by making open source license compliance simpler and more consistent. The OpenChain Specification defines a core set of requirements every quality compliance program must satisfy. The OpenChain Curriculum provides the educational foundation for open source processes and solutions, whilst meeting a key requirement of the OpenChain Specification. OpenChain Conformance allows organizations to display their adherence to these requirements. The result is that open source license compliance becomes more predictable, understandable and efficient for participants of the software supply chain.
About The Linux Foundation
The Linux Foundation is the organization of choice for the world’s top developers and companies to build ecosystems that accelerate open technology development and commercial adoption. Together with the worldwide open source community, it is solving the hardest technology problems by creating the largest shared technology investment in history. Founded in 2000, The Linux Foundation today provides tools, training and events to scale any open source project, which together deliver an economic impact not achievable by any one company. More information can be found at www.linuxfoundation.org.
Contact
Jessica Rampen
OpenChain Project/Linux Foundation
jrampen@linuxfoundation.org
650-787-3548